ZDNet UK


Skip to Main Content

ZDNet.co.uk - Winner of Best Business Website 2007
  1. Home
  2. News
  3. Blogs
  4. Reviews
  5. Prices
  6. Resources
  7. Community
  8. My ZDNet

 

ZDNet UK RSS Feeds


IT Jobs

Security threats Toolkit

Cybercriminals get stuck into honeypots

Tom Espiner ZDNet.co.uk

Published: 04 Apr 2006 16:25 BST

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

Cybercriminals are increasingly fighting antivirus vendors and each other in pursuit of illegal gain, Kaspersky Lab said on Tuesday.

The antivirus company said that as profits from cybercrime grew during 2005, criminals increasingly tried to prevent antivirus firms from developing protection against the latest threats. Honeypots that collect samples of malware for antivirus companies were a prime target.

Criminals would use legions of zombie computers called botnets to bombard honeypot networks with data to hinder or stop them working, otherwise known as distributed denial of service (DDoS) attacks, according to Kaspersky's Malware Evolution: 2005.

"If the bad guys are aware of a network that looks suspicious because it's too unprotected — to lure bad code — they can take steps like launching DDoS attacks against that honeypot network. They can then launch other attacks simultaneously [against other targets]," said David Emm, senior technology consultant for Kaspersky.

Worms can also be programmed to avoid domains known to be monitored by antivirus companies.

"Criminals will employ whatever evasive techniques they can," said Emm.

Techniques increasingly used by cybercriminals over 2005 included creating their own packing mechanisms to compress malicious code, so that they can try to avoid detection by antivirus software. Malware creators also now routinely include code to either cripple antivirus updating mechanisms on infected machines or remove antivirus software completely, according to Emm.

Cybercriminals are also increasingly targeting each other to maximise financial gain, according to Kaspersky.

"It's like any kind of economic venture. Those that get smarter survive. Organised criminal structures are run as businesses, and they take over smaller guys," said Emm.

Kaspersky also said that cybercriminals often launch DDoS attacks against rivals to stop them from operating, and attempt to hijack each other's botnets. They also program their malware to attempt to disable any other malware that has already been installed on an infected PC.

"Criminals have realised that it is much simpler to obtain already infected resources than to maintain their own botnets or to spend money on buying parts of botnets which are already in use," Yury Mashevsky, a virus analyst at Kaspersky Labs, said in the report.

"In much the same way criminals attack innocent people, they will attack each other," Emm added.

Kaspersky also reported a five-fold increase in the amount of malware designed to steal financial information over 2005.

  • Email
  • Trackback
  • Clip Link
  • Print friendly Print with Dell

Did you find this article useful?
83 out of 150 people found this useful



Company/Topic Alerts

Create a new alert from the list below:





Related Jobs

Web Development Officer

Guys and St Thomas NHS Foundation Trust Communications Department Web Development Officer Band 6, 28,149 37,558 pa inc. Guys and St Thomas are world ...

VB6/Sybase/C# - Prime Brokerage - 50-70K -

These guys need an excellent VB developer, someone who has excellent Sybase and COM knowledge. VB/C#/Sybase I have an urgent requirement for a VB ...

.NET .NET .NET IN Exeter .NET .NET .NET

These guys are the best payers in the area and offer you the future career prospects that you have always dreamed of. I am looking for 5 .NET ...

Featured Talkback

What was achieved there is recognised to be of fundamental importance to both winning the war (Churchill visited to say 'thank you' to them) and the development of the computer. Maybe Bill Gates doesn't want to support this museum because it underlines where electronic computing started i.e. here, not the U.S.

By: 1000103773

Read full story:
Bletchley Park faces bleak future

Sentry Posts Blog

Mobile Security Expert: Your Camera Ph...

Mobile Security Expert: Your Camera Phone Got Hacked Author: Eric Everson, Founder MyMobiSafe.com Have you ever heard someone say “I’d like to be a fly on the wall in that room.”?... More

Post a comment

Skype - The Roach Motel

Here is an interesting article from The National Business Review, pointing out once again that you can never delete a Skype account. Never. Period. This is something I am familiar... More

Post a comment

The vPhone: Why Visa Should Go Mobile

The vPhone: Why Visa Should Go Mobile Author: Eric Everson, Founder MyMobiSafe.com With all of the success of Apple’s iPhone, there is a growing case to support a company like Visa... More

Post a comment